Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

b4ae9c44bf...8.html

windows7-x64

3

b4ae9c44bf...8.html

windows10-2004-x64

3

Analysis

  • max time kernel
    120s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    21/08/2024, 19:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b4ae9c44bfc568d782ad7dce219b19e2_JaffaCakes118.html

  • Size

    13KB

  • MD5

    b4ae9c44bfc568d782ad7dce219b19e2

  • SHA1

    d683f88321fded589b6abeae16439b17880815ca

  • SHA256

    39c97ce9735dcdf53f763ce43e9101a8061e82b274c0217bbe9b6aba32c5379a

  • SHA512

    2b1b00401fd645effd3afa19222b3a93705c4a5fada7f03422841b9750ab308d24c8a4bc8972d676d3a24ab96f8eae906fe3b113389590295230f5dd239425ed

  • SSDEEP

    384:ln8uqnGDnW0qVh+CPe7aYWUNcW/+KjosUxZUoDXyCJZVEsUzVqGAQ0Wj2XfhEHRj:ln8vGDnZr32W

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\b4ae9c44bfc568d782ad7dce219b19e2_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2316
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2316 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:1912

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    914B

    MD5

    e4a68ac854ac5242460afd72481b2a44

    SHA1

    df3c24f9bfd666761b268073fe06d1cc8d4f82a4

    SHA256

    cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

    SHA512

    5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    1KB

    MD5

    a266bb7dcc38a562631361bbf61dd11b

    SHA1

    3b1efd3a66ea28b16697394703a72ca340a05bd5

    SHA256

    df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

    SHA512

    0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC
    Filesize

    252B

    MD5

    650346809c43d9022f8989afbba4c620

    SHA1

    9e5d5f488a223e9271713af8aefa1dc0d1e48493

    SHA256

    b14ce8a955c38081859603cf2bdde84cffc42fc66bed522e566ff0ac83d5e34c

    SHA512

    e31ff1754dd007f97301753011f4402cd336653edbdcb76fb6b66f2a50a343b628e3495aaf94779f53896847e8adb1b07d8f146de2a97820bf3b20dfe17fe8c9

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fbb5079da62aca4a551d25ec28b73a96

    SHA1

    6daf7ca0a886082603f13f1ea337dd6555dcf36a

    SHA256

    7d45acc47364cac2ffbc08cb6777d35360f32c6e2218b029d9dbb49030b6c5df

    SHA512

    fc5194cc7b143718fb126b0c22a1bbf2666e3e354ac38da683f275725ecaa4483e0177b7590fa87758cf5da0d993d50f00e29a2da423926c990e7b230b1622d3

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    326767632e8595922ddf2b193eeb2607

    SHA1

    bd05669ed612435b171ee50e014d225863f96550

    SHA256

    4ef2af786f595b19fd7bb77d80546d1683fcd53e01bb66e182da207fed194b95

    SHA512

    c41e229c1bea4b453c090333814df226e5903a9ce1a8aec8ef21cff5b37ad490b5ae2ebb4a0dacab985f76462d9866464e2c14ef28fc976beeffea455ef4ebce

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8fa6e5367e795426f9f51d19cf4e8375

    SHA1

    513d6a1142426ac1d4ef427de7ecf015b1834dab

    SHA256

    68b17a43aa3d6e42023fffc53be9cc83c0f94bb7f5eda17d96da9d3a68b881dc

    SHA512

    4d7ae7c5799e151b31878462c53b08c7da790eb0ce749d6406ae0b418cfb01d26547928d3ca0a3057f9fa69faee828a5d03bd7abbf3385f06d94ea0e10bdafdc

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4d3537b0ed49597efeab8c18ee4abc9b

    SHA1

    09b822eb9dc0b6857f461f5d01e7985b71411b1b

    SHA256

    7f695ca92e403e2cd5821a58f9de1f9ea41db196dfdd09a47a7618727fbcab96

    SHA512

    91bd5aa24c2d21a903c4c7a3931baddf31542e9b1007886f9b31536f97604fbd04dba44e4430a0254d86f5d4eaad42d8d20533e44263338d069aa61d60244823

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9f5a2503061edaabcbb93ff98dd301e4

    SHA1

    2451c2811bd204acb2c11b707a0299a5ecfc0544

    SHA256

    8a6d7e5addf84a0e2235a753b4ad39c5a43ea4f7da6434de28e55706f925856f

    SHA512

    8fdacc7a6ad5825df397ca9202b5292ff0d806ab80f5864a1ca2e2af39df1faf92c28d82ac97c1b097f59f851408caf494492e6572cf1177f04c666e89e3a951

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4842a41898e59609e97627c5b5c960c0

    SHA1

    c1ad7f02246d503163b2e3286a6cc2aa7444f671

    SHA256

    89c9938fe410a11c12c10f4758f55771e8dd9f951cb99fa923dbb5e7ad1d7be9

    SHA512

    2c780659d4d4c0f134f711a84229d9684207f41484dcbf4138c78345e4f2cbcf72906394908df352458f2a8c5d9de0f67cb040ab8867f1d7001d3eedd34f5fb7

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    96487ea62507dbb2804910305c054cdf

    SHA1

    5c0c9a82f622b5234a8bffbda021a7c5c5c2dd2d

    SHA256

    e127212af20cbe82038de3ac66502f3371e75404956d01ae0a534c610b81a1aa

    SHA512

    e9023f11036f33dc738a5fbe42572d246f8050208f516bf6f5e784362428a6665423394f8ef04b565af5c8d09e5f3b5d27768e63992a7ad549a3ef0ba56787bb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ba8496830ba8e72c69a9e39d4cb8cec3

    SHA1

    82032ed454a127ec8b4a668839210bdd14dcb6f0

    SHA256

    9ea167b6105939b2169cede5b581d8f5d09156484e8500831647ba2502fb733c

    SHA512

    73e9c84fde946bedfd8c5d8553ca8f906bd0ec36b4870bcf22366296c50ce0d26c62849ec5e529cc73f43d579824642b116366fe31f314122b091cd0a20e4324

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    db2a78a46a0955706231647c785649bb

    SHA1

    c559c54dfe4dd49098ab4d6c1a758ebf374dfaa2

    SHA256

    cca321bd1bfc31cbdbf4130207d3661675117dd0d591e028be669b92ea88d010

    SHA512

    114ad5be4ef233b7b00043ea4e92ae24d1ddc06568a0cc22f8b55fbbc19b9ef8b6250b75ff87a37a24c9cca9b425c1432fc635bf149b9017c31286d697bfd722

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2a9cb77b0c8176aeb6b228aaaa105d99

    SHA1

    192233e3c42205c525e0c722a4b48289c4cfef79

    SHA256

    35b34fc8672a0aa2ce4135a1bd81aaa00b69ffea94e85c221e5043be4f2026e1

    SHA512

    817ea73d4da01613da527e859a6f01b4d2d18765c4a46cd6676d1b34691ea294ac137a9c92ffa7f6ca57ae1ca9dadeb5d88d390f02ecc5bbd9c1c0d68121a149

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    b628a4c310c47106a39a7dc8d45c4b1c

    SHA1

    d6ab5c95db03e542a38a93e86503051abdeb285a

    SHA256

    353c462e9df4e065b9081cbe9cd9afdd1d08abe92401af1da18c1b58cc6de1a6

    SHA512

    c565f2fa80d4570e5ceb817f6f753526b051645b27d8bfbe3ab69f58a4111dfdfd7e3944ef3cb6c1dd9ef84d77f3a05ce2bf52cd20d7dcb8e9546641fa9da81a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f9a5e078703af41c0911bce3f94f349b

    SHA1

    fbcb990927042762bc56e98f6766619de014213f

    SHA256

    d1029c363ce9a24d87e2bd38832536196d559aa189d4c694bf701d4972d7064c

    SHA512

    cb88a58672bb42f011d34260d17450fe310abbb2b5849fefacb4e1ffb366e643e25d3fb11909f68646df20a6a219f964bd086102735aef0a033202fca70cfe20

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357
    Filesize

    242B

    MD5

    7cc06b60d1a5b8aee071120ca75b4123

    SHA1

    68611b09bda1e27c0d122e70e582c97467e507c5

    SHA256

    89c70fc94dd3d3a730020784ad80f9604ce1e8a05cebbacde6cf1cca7845e295

    SHA512

    64d553f717d6508cb8dab71796388951a651ac755025d331bd6ae8d175bf7a29eeef6c32e377116518458b1e56a653f74636d1c8b14eda4480ec0373d12d7c67

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab10B5.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar10B7.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit